Skip to content

Stream endpoint #9142

New issue
New issue
Closed
Closed
Stream endpoint#9142
Labels
1. to developAccepted and waiting to be taken care ofenhancement
Milestone
Nextcloud 14
@rullzer

Description

@rullzer
rullzer
opened on Apr 11, 2018

Assume:

  1. A mobile user U using the Nextcloud App N that wants to view a video file in an external app
  2. A video app like VLC that you trust
  3. A mallware app EVIL that tries to hijack the url send from N to VLC

Because we are sending the link into the open basically we must assure:

  1. The link is read only
  2. The link is only valid for a limited amount of time (8 hours?)
  3. The link does not contain the users username and password
  • Just a random generated token

Basically we'd need an endpoint where the app can say: "I want to have a link to read the file with fileID X". The endpoint will then generate a link that can be send to VLC.

This endpoint should be webdav since it already support range requests by default etc.

CC: @tobiasKaminsky

Metadata

Metadata

Assignees

No one assigned

    Labels

    1. to developAccepted and waiting to be taken care ofenhancement

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions